US20060114831A1 - Mirroring of data in a network device - Google Patents
Mirroring of data in a network device Download PDFInfo
- Publication number
- US20060114831A1 US20060114831A1 US11/252,562 US25256205A US2006114831A1 US 20060114831 A1 US20060114831 A1 US 20060114831A1 US 25256205 A US25256205 A US 25256205A US 2006114831 A1 US2006114831 A1 US 2006114831A1
- Authority
- US
- United States
- Prior art keywords
- port
- packet
- egress
- ingress
- mirrored
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/35—Switches specially adapted for specific applications
- H04L49/351—Switches specially adapted for specific applications for local area network [LAN], e.g. Ethernet switches
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/20—Support for services
- H04L49/208—Port mirroring
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/30—Peripheral units, e.g. input or output ports
- H04L49/3063—Pipelined operation
Definitions
- the present invention relates to a network device in a data network and more particularly to the mirroring of data received by a network device.
- a packet switched network may include one or more network devices, such as a Ethernet switching chip, each of which includes several modules that are used to process information that is transmitted through the device.
- the device includes an ingress module, a Memory Management Unit (MMU) and an egress module.
- the ingress module includes switching functionality for determining to which destination port a packet should be directed.
- the MMU is used for storing packet information and performing resource checks.
- the egress module is used for performing packet modification and for transmitting the packet to at least one appropriate destination port.
- One of the ports on the device may be a CPU port that enables the device to send and receive information to and from external switching/routing control entities or CPUs.
- the packet flow needs to be monitored to determine if the network device is functioning properly.
- the packets being sent to a given port could be “mirrored” to another port where the packet flow could be examined.
- the mirroring process is important in that the flow of the packets to a given destination port need not be interrupted to examine the flow to that destination port.
- the packets that are received by the “mirrored-to” port are examined at the latter port with no disruption to the flow of packets to the actual destination port.
- the packet that was mirrored was modified as a consequence of its being forwarded.
- the header may be modified to aid in that forwarding operation.
- the packet that is forwarded to the destination port is not the same as the packet that the receiving port received. This can be a problem if a copy of the received packet is what is needed at the mirrored-to port.
- FIG. 1 illustrates a network device in which an embodiment of the present invention may be implemented
- FIG. 2 illustrates a centralized ingress pipeline architecture, according to one embodiment of the present invention
- FIG. 3 illustrates the components of the parser stage, according to one embodiment of the present invention
- FIG. 4 illustrates a centralized egress pipeline architecture of an egress stage, according to one embodiment of the present invention
- FIG. 5 illustrates an embodiment of a table lookup stage, according to one embodiment of the present invention
- FIG. 6 illustrates a configuration of network devices and the mirroring of data, according to one embodiment of the present invention.
- FIG. 7 illustrates a table that is used to providing mirroring of data, according to one embodiment of the present invention.
- FIG. 1 illustrates a network device, such as a switching chip, in which an embodiment the present invention may be implemented.
- Device 100 includes an ingress module 102 , a MMU 104 , and an egress module 106 .
- Ingress module 102 is used for performing switching functionality on an incoming packet.
- MMU 104 is used for storing packets and performing resource checks on each packet.
- Egress module 106 is used for performing packet modification and transmitting the packet to an appropriate destination port.
- Each of ingress module 102 , MMU 104 and Egress module 106 includes multiple cycles for processing instructions generated by that module.
- Device 100 implements a pipelined approach to process incoming packets.
- the device 100 has the ability of the pipeline to process, according to one embodiment, one packet every clock cycle.
- the device 100 includes a 133.33 MHz core clock. This means that the device 100 architecture is capable of processing 133.33M packets/sec.
- Device 100 may also include one or more internal fabric high speed ports, for example a HiGigTM, high speed, port, 108 a - 108 x , one or more external Ethernet ports 109 a - 109 x , and a CPU port 110 .
- High speed ports 108 a - 108 x are used to interconnect various network devices in a system and thus form an internal switching fabric for transporting packets between external source ports and one or more external destination ports. As such, high speed ports 108 a - 108 x are not externally visible outside of a system that includes multiple interconnected network devices.
- CPU port 110 is used to send and receive packets to and from external switching/routing control entities or CPUs.
- CPU port 110 may be considered as one of external Ethernet ports 109 a - 109 x .
- Device 100 interfaces with external/off-chip CPUs through a CPU processing module 111 , such as a CMIC, which interfaces with a PCI bus that connects device 100 to an external CPU.
- a CPU processing module 111 such as a CMIC, which interfaces with a PCI bus that connects device 100 to an external CPU.
- traffic in device 100 is routed from an external Ethernet source port to one or more unique destination Ethernet ports 109 a - 109 x .
- device 100 supports physical Ethernet ports and logical (trunk) ports.
- a physical Ethernet port is a physical port on device 100 that is globally identified by a global port identifier.
- the global port identifier includes a module identifier and a local port number that uniquely identifies device 100 and a specific physical port.
- the trunk ports are a set of physical external Ethernet ports that act as a single link layer port. Each trunk port is assigned a global a trunk group identifier (TGID).
- TGID trunk group identifier
- device 100 can support up to 128 trunk ports, with up to 8 members per trunk port, and up to 29 external physical ports.
- Destination ports 109 a - 109 x on device 100 may be physical external Ethernet ports or trunk ports. If a destination port is a trunk port, device 100 dynamically selects a physical external Ethernet port in the trunk by using a hash to select a member port. The dynamic selection enables device 100 to allow for dynamic load sharing between ports in a trunk.
- Packets may enter device 100 from a XBOD or a GBOD.
- the XBOD is a block that has one 10GE/12G MAC and supports packets from high speed ports 108 a - 108 x .
- the GBOD is a block that has 12 10/100/1G MAC and supports packets from ports 109 a - 109 x.
- FIG. 2 illustrates a centralized ingress pipeline architecture 200 of ingress module 102 .
- Ingress pipeline 200 processes incoming packets, primarily determines an egress bitmap and, in some cases, figures out which parts of the packet may be modified.
- Ingress pipeline 200 includes a data holding register 202 , a module header holding register 204 , an arbiter 206 , a configuration stage 208 , a parser stage 210 , a discard stage 212 and a switch stage 213 .
- Ingress pipeline 200 receives data from the XBOD, GBOD or CPU processing module 111 and stores cell data in data holding register 202 .
- Arbiter 206 is responsible for scheduling requests from the GBOD, the XBOD and CPU.
- Configuration stage 208 is used for setting up a table with all major port-specific fields that are required for switching.
- Parser stage 210 parses the incoming packet and a high speed module header, if present, handles tunnelled packets through Layer 3 (L3) tunnel table lookups, generates user defined fields, verifies Internet Protocol version 4 (IPv4) checksum on outer IPv4 header, performs address checks and prepares relevant fields for downstream lookup processing.
- Discard stage 212 looks for various early discard conditions and either drops the packet and/or prevents it from being sent through pipeline 200 .
- Switching stage 213 performs all switch processing in ingress pipeline 200 , including address resolution.
- the ingress pipeline includes one 1024-bit cell data holding register 202 and one 96-bit module header register 204 for each XBOD or GBOD.
- Data holding register 202 accumulates the incoming data into one contiguous 128-byte cell prior to arbitration and the module header register 204 stores an incoming 96-bit module header for use later in ingress pipeline 200 .
- holding register 202 stores incoming status information, including a Start cell Of Packet (SOP) signal, an End cell Of Packet (EOP) field, a purge field for indicating that the packet should be purged, a statistic update field for indicating that statistic counters should be updated for a particular packet, a high speed field for indicating that the associated packet arrived at a high speed port, a pause packet field for indicating if a current high speed packet is a pause packet, a cell byte count field for indicating the total bytes accumulated for the cell and a source port field.
- SOP Start cell Of Packet
- EOP End cell Of Packet
- purge field for indicating that the packet should be purged
- a statistic update field for indicating that statistic counters should be updated for a particular packet
- a high speed field for indicating that the associated packet arrived at a high speed port
- a pause packet field for indicating if a current high speed packet is a pause packet
- Ingress pipeline 200 schedules requests from the XBOD and GBOD every six clock cycles and sends a signal to each XBOD and GBOD to indicate when the requests from the XBOD and GBOD will be scheduled.
- CPU processing module 111 transfers one cell at a time to ingress module 102 and waits for an indication that ingress module 102 has used the cell before sending subsequent cells.
- Ingress pipeline 200 multiplexes signals from each of XBOD, GBOD and CPU processing based on which source is granted access to ingress pipeline 200 by arbiter 206 .
- a source port is calculated by register buffer 202 , the XBOD or GBOD connection is mapped to a particular physical port number on device 100 and register 202 passes information relating to a scheduled cell to arbiter 206 .
- arbiter 206 When arbiter 206 receives information from register buffer 202 , arbiter 206 may issue at least one of a packet operation code, an instruction operation code or a FP refresh code, depending on resource conflicts.
- the arbiter 206 includes a main arbiter 207 and auxiliary arbiter 209 .
- the main arbiter 207 is a time-division multiplex (TDM) based arbiter that is responsible for scheduling requests from the GBOD and the XBOD, wherein requests from main arbiter 207 are given the highest priority.
- TDM time-division multiplex
- the auxiliary arbiter 209 schedules all non XBOD/GBOD requests, including CPU packet access requests, CPU memory/register read/write requests, learn operations, age operations, CPU table insert/delete requests, refresh requests and rate-limit counter refresh request and auxiliary arbiter's 209 requests are scheduled based on available slots from main arbiter 207 .
- main arbiter 207 When the main arbiter 207 grants an XBOD or GBOD a slot, the cell data is pulled out of register 202 and sent, along with other information from register 202 , down ingress pipeline 200 .
- the XBOD/GBOD provides certain status bits, for example SOP, EOP and MOP status bits, to main arbiter 207 that it uses to schedule the XBOD/GBOD requests and resolve any arbitration conflicts with auxiliary arbiter 209 .
- main arbiter 207 After scheduling the XBOD/GBOD cell, main arbiter 207 forwards certain status bits, for example SOP, EOP and MOP status bits, to auxiliary arbiter 209 .
- auxiliary arbiter 209 is also responsible for performing all resource checks, in a specific cycle, to ensure that any operations that are issued simultaneously do not access the same resources. As such, auxiliary arbiter 209 is capable of scheduling a maximum of one instruction operation code or packet operation code per request cycle. According to one embodiment, auxiliary arbiter 209 implements resource check processing and a strict priority arbitration scheme. The resource check processing looks at all possible pending requests to determine which requests can be sent based on the resources that they use. Resources of ingress pipeline 200 are separated into lookup resources for SOP cells, MMU access for all cells, EOP resources for EOP cells and L2_MOD_FIFO resource for Layer 2 (L2) operations.
- the L2_MOD_FIFO resource is a 16 entry table that is used for tracking all updates to a Layer 2 (L2) table. Since the L2_MOD_FIFO resource is limited, auxiliary arbiter 209 restricts certain operations once the L2_MOD_FIFO resource is full. Additionally, auxiliary arbiter 209 may not schedule access to any address resolution processing faster than once every three clock cycles.
- auxiliary arbiter 209 Upon processing the cell data, auxiliary arbiter 209 transmits packet signals, including SOP and EOP, the 1024 bit packet cell data, a L2_MOD_FIFO lock bit, instruction operation code information and instruction write data to configuration stage 208 . As is apparent to one skilled in the art, the arbiter may transmit other types and/or configurations of information to configuration stage 208 .
- Configuration stage 208 includes a port table for holding all major port specific fields that are required for switching, wherein one entry is associated with each port.
- the configuration stage 208 also includes several registers. When the configuration stage 208 obtains information from arbiter 206 , the configuration stage 208 sets up the inputs for the port table during a first cycle and multiplexes outputs for other port specific registers during a second cycle. At the end of the second cycle, configuration stage 208 sends output, including SOP, EOP, MOP, PURGE and statistic update, to parser stage 210 .
- Parser stage 210 manages an ingress pipeline buffer which holds the 128-byte cell as lookup requests traverse pipeline 200 .
- the lookup request reaches the end of pipeline 200 , the data is pulled from the ingress pipeline buffer and sent to MMU 104 . If the packet is received on a high speed port, a 96-bit module header accompanying the packet is parsed by parser stage 210 .
- FIG. 3 illustrates the components of parser stage 210 .
- parser stage 210 includes a source trunk map table 302 , a L2 parsing module 304 , Layer 3 (L3) parsing module 306 , L3 Tunnel lookup module 308 , IPv4 checksum module 310 , Layer 4 (L4) parsing module 312 and user defined field (UDF) parsing module 314 .
- the source trunk map table 302 is used by parser stage 210 for source trunk resolution.
- L2 parsing module 304 supports parsing of different types of layer 2 encapsulations, including Ethernet II, 802.3, SNAP and 802.3 LLC packet types.
- L3 parsing module 306 supports parsing of different types of L3 encapsulations, including IPv4 packets with or without options, IPv6 packets and ARP packets. Additionally, L3 parsing module 306 supports parsing tunnelled packet to enable IP-in-IP and IPv6 over IPv4 tunnelling.
- L3 tunnel lookup module 308 includes a 128 entry TCAM L3 tunnel table to enable parser 212 to determine if the incoming packet is a tunnelled IPv4 packet.
- IPv4 checksum module 310 verifies the IPv4 checksum on the outer IPv4 header and checks the IPv4 checksum on an outer IPv4 header with or without options.
- L4 parsing module 312 supports L4 parsing and UDF parsing module 314 supports user defined fields parsing for allowing users to match on arbitrary fields within the first 128 bytes of the packet.
- parser stage 210 After all fields have been parsed, parser stage 210 writes the incoming cell data to the ingress pipeline buffer and passes a write pointer down the pipeline. Since the packet data is written to the ingress pipeline buffer, the packet data need not be transmitted further and the parsed module header information may be dropped. Discard stage 212 then looks for various early discard conditions and drops the packet and/or prevents it from being sent through the chip.
- Switching stage 213 performs address resolution processing and other switching on incoming packets.
- switching stage 213 includes a first switch stage 214 and a second switch stage 216 .
- First switch stage 214 resolves any drop conditions, performs BPDU processing, checks for L2 source station movement and resolves most of the destination processing for L2 and L3 unicast packets, L3 multicast packets and IPMC packets.
- the first switch stage 214 also performs protocol packet control switching by optionally copying different types of protocol packets to the CPU or dropping them.
- the first switch stage 214 further performs all source address checks and determines if the L2 entry needs to get learned or re-learned for station movement cases.
- the first switch stage 214 further performs destination calls to determine how to switch packet based on a destination switching information. Specifically, the first switch stage 214 figures out the destination port for unicast packets or port bitmap of multicast packets, calculates a new priority, optionally traps packets to the CPU and drops packets for various error conditions.
- the first switch stage 214 also includes a DSCP_Table for mapping an incoming IPv4 or IPv6 DSCP to a new value.
- the first switch stage 214 further includes rate limiting counters that provide the ability to program specific rates for multicast, broadcast and DLF traffic.
- the first switch stage 214 handles high speed switch processing separate from switch processing from port 109 a - 109 i and switches the incoming high speed packet based on the stage header operation code.
- the second switch stage 216 then performs FP action resolution, source port removal, trunk resolution, high speed trunking, port blocking, CPU priority processing, end-to-end Head of Line (HOL) resource check, resource check, mirroring, maximum transfer length (MTU) checks for verifying that the size of incoming/outgoing packets is below a maximum transfer length.
- the second switch stage 216 takes first switch stage 216 switching decision, any L3 routing information and FP redirection to produce a final destination for switching.
- the second switch stage 216 also removes the source port from the destination port bitmap and performs trunk resolution processing for resolving the trunking for the destination port for unicast packets, the ingress mirror-to-port and the egress mirror-to-port.
- the second switch stage 216 also performs high speed trunking by checking if the source port is part of a high speed trunk group and, if it is, removing all ports of the source high speed trunk group.
- the second switch stage 216 further performs port blocking by performing masking for a variety of reasons, including meshing and egress masking.
- the second switch stage 216 also determines priority/Class of Service for packets that are being sent to the CPU.
- the second switch stage 216 further performs resource checks before mirroring to generate an accurate port bitmap for egress mirroring and to remove any resource-limited ports that might have been added by mirroring.
- the second switch stage 216 then outputs the p-bus fields and the cell data to MMU 104 .
- the p-bus fields indicate to egress stage 106 how to switch and modify the packet.
- egress module 106 Upon receiving the packet from MMU 104 , egress module 106 supports multiple egress functions for a 72 gigabyte port bandwidth and a CPU processing bandwidth. According to one embodiment, the egress module 106 is capable of handling more than 72 Gig of traffic, i.e., 24 one GE port, 4 high speed ports (12G) and a CPU processing port of 0.2GE. The egress module 106 receives original packets, as inputted from Ethernet ports 109 a - 109 i , from MMU 104 , and may either transmit modified or unmodified packets to destination ports 109 j - 109 x .
- all packet modifications within device 100 are made in egress module 106 and the core processing of egress module 106 is capable of running faster than the processing of destination ports 109 a - 109 x . Therefore, egress module 106 provides a stall mechanism on a port basis to prevent ports 109 a - 109 x from becoming overloaded and thus services each port based on the speed of the port.
- the egress module 106 is connected to the MMU 104 by a 1024 bits data interface and all packets transmitted from the MMU 104 passes through egress module 106 .
- the MMU 104 passes unmodified packet data and control information to egress module 106 .
- the control information includes the results of table lookups and switching decisions made in ingress module 102 .
- the data bus from MMU 106 is shared across all ports 108 and 109 and the CPU processing 111 . As such, the bus uses a “request based” Time Division Multiplexing (TDM) scheme, wherein each Gig port has a turn on the bus every 72 cycles and each high speed Port 108 has a turn every 6 cycles.
- TDM Time Division Multiplexing
- CPU processing packet data is transmitted over bubbles—free spaces occurring on the bus.
- the egress module 106 parses the packet data, performs table lookups, executes switch logic, modifies, aligns and further buffers the packet before the data is transmitted to the appropriate destination port 109 a - 109 x.
- the egress module 106 is connected to the CPU processing module 111 through a 32 bit S-bus interface which the CPU uses to send requests to egress module 106 .
- the requests are typically for reading the egress module's resources, i.e., registers, memories and/or stat counters.
- the egress module 106 Upon receiving a request, the egress module 106 converts the request into a command and uses a mechanism, described in detail below, for storing and inserting CPU instructions into a pipeline wherever there is an available slot on the pipeline.
- FIG. 4 illustrates a centralized egress pipeline architecture of egress stage 106 .
- the egress pipeline includes an arbiter 402 , parser 406 , a table lookup stage 408 , a decision stage 410 , a modification stage 412 and a data buffer 414 .
- the arbiter 402 provides arbitration for accessing egress pipeline resources between packet data and control information from MMU and information from the CPU.
- Parser 406 performs packet parsing for table lookups and modifications.
- Table lookup stage 408 performs table lookups for information transmitted from parser 406 .
- Decision stage 410 is used for deciding whether to modify, drop or otherwise process the packet.
- Modification stage 412 makes modification to the packet data based on outputs from previous stages of the ingress module.
- All incoming packet data from the MMU 104 is transmitted to an initial packet buffer 404 .
- the initial packet buffer is 1044 bits wide and 18 words deep.
- the egress pipeline receives two inputs, packet data and control information from the MMU 104 and CPU operations from the s-bus.
- the initial packet buffer 404 stores packet data and keeps track of any empty cycles coming from MMU 104 .
- Initial packet buffer 404 outputs its write address and parser 406 passes the latest write address with pipeline instructions to modification stage 414 .
- the arbiter 402 collects packet data and control information from the MMU 104 and read/write requests to registers and memories from the CPU and synchronizes the packet data and control information from MMU 104 and writes the requests from the CPU in a holding register. Based on the request type from the CPU, the arbiter 402 generates pipeline register and memory access instructions and hardware table initialization instructions. After arbiter 402 collects packet data, CPU requests and hardware table initialization messages, it generates an appropriate instruction.
- arbiter 402 generates a Start Cell Packet instruction, an End Cell of Packet instruction, a Middle Cell of Packet instruction, a Start-End Cell of Packet instruction, a Register Read Operation instruction, a Register Write Operation instruction, Memory Read Operation instruction, a Memory Write Operation instruction, a Memory Reset Write Operation instruction, a Memory Reset Write All Operation instruction and a No Operation instruction.
- Egress pipeline resources associated Start Cell Packet instructions and Start-End Cell of Packet instructions are given the highest priority by arbiter 404 .
- End Cell of Packet instructions, Middle Cell of Packet instructions, Register Read Operation instructions, Register Write Operation instructions, Memory Read Operation instructions and Memory Write Operation instruction receive the second highest priority from arbiter 404 .
- Memory Reset Write Operation instructions and Memory Reset Write All Operation instructions receive the third highest priority from arbiter 404 .
- No Operation instructions receive the lowest priority from arbiter 404 .
- parser 406 After receiving an instruction from arbiter 404 , parser 406 parses packet data associated with the Start Cell of Packet instruction and the Start-End Cell of Packet instruction using the control information and a configuration register transmitted from arbiter 406 . According to an embodiment, the packet data is parsed to obtained L4 and L3 fields which appear in the first 148 bytes of the packet.
- Table lookup stage 408 then receives all packet fields and register values from parser 406 .
- FIG. 5 further illustrates table lookup stage 408 .
- Table lookup stage 408 includes a L3 Module 502 , a VLAN stage 504 , a VLAN translation stage 506 , IP tunneling lookup stage 508 .
- L3 Module 502 includes a 8k deep Next Hop Table 510 and a 4K deep Interface table 512 .
- Next Hop table 510 is indexed based on a 13 bit wide next hop index from the MMU 104 and Next Hop table 510 provides a MAC Address and an Interface Number that is used, depending on the type of packet, to index Interface table 512 .
- table lookup stage 408 decodes the address and writes or reads data from corresponding tables.
- VLAN stage 504 is used to obtain VLAN related information and a spanning tree state of an outgoing port.
- VLAN stage 504 includes a VLAN table 514 and a stage (STG) table 516 .
- VLAN table 514 is indexed based on the VLAN IDs from either the packet or Interface table 512 . If a VLAN table lookup results in a “miss”, i.e., an invalid VLAN, then the packet may be dropped. If the VLAN entry is valid but the outgoing port is not a member of the VLAN, then the packet may be also dropped.
- the VLAN table outputs a VLAN membership, untagged bitmap, and a STG group number which is used to index STG table 516 .
- STG table 516 outputs an STG vector which contains the spanning tree state of the outgoing ports.
- VLAN stage 504 also determines whether the packet should be modified in egress pipeline for CPU and ingress mirroring cases.
- VLAN translation stage 506 translates the incoming VLAN to a new one and searches various tables.
- VLAN translation stage 506 includes a Content Addressable Memory (CAM) 518 and an associated Data Random Addressable Memory (RAM) 520 .
- CAM 518 is searched with the VLAN ID and the destination port number and if an associated entry is found, an address is obtained from CAM 518 to access the associated Data RAM 520 .
- IP tunneling lookup stage 508 obtains a partial Tunnel IP header from appropriate tables, registers and parsed packet fields.
- IP tunnelling lookup stage 508 includes a IP tunnel table 522 that is indexed issuing a tunnel index from interface table 512 and outputs tunnel type, among other information, which is used to distinguish among tunnel protocols that are implemented in egress pipeline.
- decision stage 410 a decision is made as to whether to modify, drop or otherwise process the packet. For example, decision stage 410 first looks for flush bits at the beginning of the packet transmission and if the flush bits are set, the packets are marked “dropped”. In an embodiment of the invention, if a flush bit for a packet is set for a packet already in transmission, the packet is completely transmitted and the next packet is flushed. In another example, MMU 104 may mark packets as Purge, Aged or Cell Error and decision stage 410 may either be dropped or transmit these packet but mark them as erroneous.
- the decision stage 410 may drop the packet if certain fields are set.
- Decision stage 408 also determines if the packet need to be L4 switched or L3 routed and the type of mirroring functions that need to be performed on the packet.
- Modification stage 412 thereafter constructs a Tunnel IP Header and a module header for the packet, makes replacement changes in the packet and computes IP checksum for outer and inner IP headers.
- Modification stage 412 receives a packet data interface from the initial buffer 404 which enables modification stage 401 to provide a read address to initial buffer 404 and in response obtain the packet data and basic control data.
- Modification stage 412 then generates Middle of Packet and End of Packet instructions based on the data received from initial buffer 404 and makes changes based on these commands.
- Modification stage 412 also receives all packet decisions and pipeline commands decision stage 410 and uses this information to make further changes to the packet. Specifically, all fields of the tunnel IP header which need to be filled by incoming packet fields are filled.
- Modification stage 412 further reads back packets and control information from initial buffer 404 and performs all packet modifications and replacements of fields. It outputs CPU operations and hardware commands and data and addresses associated with them on one bus and outputs packet data and control information on another bus. Additionally, modification stage 412 performs physical encapsulation and de-capsulation of headers and tag removal and insertions. If a packet is going to a high speed port, modification stage 412 converts the packet from Ethernet format to high speed format. Modification stage 412 also aligns the packet by padding packets smaller than 64 bytes and removes holes by aligning data to 1314 bit boundary. Thereafter, 1314 bits “complete” data word is outputted from modification stage 412 to the data buffer 414 .
- Data buffer 414 stores completed data words from modification stage 412 in memory. Before the egress pipeline sends packets out to destination ports 109 a - 109 x , the packet data are stored in the data buffer 414 for pipeline latency and port speed matching. Data buffer 414 is capable for requesting data from MMU 104 whenever it has a free space.
- mirroring can accommodate the needs of mirroring as it is used today.
- types of mirroring include ingress mirroring, egress mirroring and MAC-based (i.e. address-based) mirroring.
- ingress mirroring an unmodified packet is forwarded to the mirrored-to port, and the latter two types receive a modified packet.
- up to four mirrored-to ports may be selected for both ingress and egress mirroring.
- Tables are used to effectuate the mirroring process.
- the L2 lookup process provides mirroring information and determines where a mirror index table should also be used.
- the mirror index table is read to determine mirroring ports, which may also be specified as a trunk group ID.
- one Ingress Mirror to Port can be specified.
- one Egress Mirror to Port can be specified.
- One Not-Unicast Mirror to Port can also be specified.
- the Not-Unicast Mirror to Port will be picked up according to its ingress port instead of sending multiple egress mirror packet to different egress ports.
- the packet is received on the FB 1 network device 601 , and its destination address is determined through an address resolution process, as discussed above.
- the unmodified packet is forwarded to the mirrored-to port on network device FB 2 603 through the switch fabric 602 .
- a mirror to port is not required to be in the same FB 601 , but can be specified in the remote FB 603 or FB 604 in the same fabric 602 .
- a modified packet is sent also to FB 2 603 , which is the destination address for the packet.
- a copy of the modified packet is also sent to FB 3 604 , which contains the egress mirrored-to-port.
- FB 601 can have specified four Ingress Mirror to Ports.
- a total of four Egress Mirror to Ports, where either mirror to port can be part of a trunk group.
- a first is a modified version of the packet that is sent to the destination port of switch 603 .
- the header of the original packet is modified when the packet is sent out an egress port of device 601 to reach its ultimate destination. Since the destination port has a mirrored-to-port, Egress Mirrored, on device 604 , a copy of the modified packet is also sent out that mirrored-to-port.
- Egress Mirrored on device 604 .
- an unmodified packet is sent to Ingress Mirrored port on device 603 .
- the MMU When a packet is received by an MMU, the MMU stores only one copy of this packet in Cell Buffer Pool and one copy inside the egress port Transmit Queue. The MMU replicates this entry to send out needed copies to the egress pipe. This packet's packet pointer is keep in Transmit Queue until all the needed copies have sent to the Egress Pipe.
- the MMU first sends out the normal switch packet and flags it as a SWITCH packet. After finish transmitting the first packet, the MMU sends out a second packet and marks it as an Ingress Mirrored packet. The Egress Pipe will not modify this packet according this Mark out. At the end, the MMU will send out the last packet and mark it as an Egress Mirror Packet. The Egress Pipe will modify this packet as a Modified packet. After all packets are sent, the packet pointer will be released from the Transmit Queue and the packet's copy in Cell Buffer Pool will be removed.
- FB 601 will send out Ingress and Egress Mirror Packets marked as a unicast packet and no longer as a multicast packet. Therefore, there is only one Ingress and one Egress Packet that can be generated within FABRIC 602 .
- the present invention is also applicable to mirroring of ports of a device to a mirrored-to-port on the same device. It is also applicable to one type of mirroring, i.e. egress, ingress or MAC-based, without use of other types of mirroring in the same device.
- the above-discussed configuration of the invention is, in a preferred embodiment, embodied on a semiconductor substrate, such as silicon, with appropriate semiconductor manufacturing techniques and based upon a circuit layout which would, based upon the embodiments discussed above, be apparent to those skilled in the art.
- a person of skill in the art with respect to semiconductor design and manufacturing would be able to implement the various modules, interfaces, and tables, buffers, etc. of the present invention onto a single semiconductor substrate, based upon the architectural description discussed above. It would also be within the scope of the invention to implement the disclosed elements of the invention in discrete electronic components, thereby taking advantage of the functional aspects of the invention without maximizing the advantages through the use of a single semiconductor substrate.
- network devices may be any device that utilizes network data, and can include switches, routers, bridges, gateways or servers.
- network devices may include switches, routers, bridges, gateways or servers.
- packets in the context of the instant application, can include any sort of datagrams, data packets and cells, or any type of data exchanged between network devices.
Abstract
Description
- This application claims priority of U.S. Provisional Patent Application Ser. No. 60/631,570, filed on Nov. 30, 2004. The subject matter of this earlier filed application is hereby incorporated by reference.
- 1. Field of the Invention
- The present invention relates to a network device in a data network and more particularly to the mirroring of data received by a network device.
- 2. Description of the Related Art
- A packet switched network may include one or more network devices, such as a Ethernet switching chip, each of which includes several modules that are used to process information that is transmitted through the device. Specifically, the device includes an ingress module, a Memory Management Unit (MMU) and an egress module. The ingress module includes switching functionality for determining to which destination port a packet should be directed. The MMU is used for storing packet information and performing resource checks. The egress module is used for performing packet modification and for transmitting the packet to at least one appropriate destination port. One of the ports on the device may be a CPU port that enables the device to send and receive information to and from external switching/routing control entities or CPUs.
- As part of the management of the network device, often the packet flow needs to be monitored to determine if the network device is functioning properly. In prior art devices, the packets being sent to a given port could be “mirrored” to another port where the packet flow could be examined. The mirroring process is important in that the flow of the packets to a given destination port need not be interrupted to examine the flow to that destination port. The packets that are received by the “mirrored-to” port are examined at the latter port with no disruption to the flow of packets to the actual destination port.
- Previously, for most prior art network devices, for a destination or source port, only one mirrored-to port could be specified. Given that mirroring was primarily used for monitoring of traffic received by that port, having multiple mirrored-to ports were not needed. However, mirroring has been used more recently to allow for other operations than mere static monitoring. Thus, there is a need for a network device to mirror packets to multiple ports.
- Additionally, the packet that was mirrored was modified as a consequence of its being forwarded. Thus, if a packet received at a given port of a network device is forwarded to another port, the header may be modified to aid in that forwarding operation. However, if that receiving port is supposed to mirror packets to another mirrored-to port, the packet that is forwarded to the destination port is not the same as the packet that the receiving port received. This can be a problem if a copy of the received packet is what is needed at the mirrored-to port.
- The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this specification, illustrate embodiments of the invention that together with the description serve to explain the principles of the invention, wherein:
-
FIG. 1 illustrates a network device in which an embodiment of the present invention may be implemented; -
FIG. 2 illustrates a centralized ingress pipeline architecture, according to one embodiment of the present invention; -
FIG. 3 illustrates the components of the parser stage, according to one embodiment of the present invention; -
FIG. 4 illustrates a centralized egress pipeline architecture of an egress stage, according to one embodiment of the present invention; -
FIG. 5 illustrates an embodiment of a table lookup stage, according to one embodiment of the present invention; -
FIG. 6 illustrates a configuration of network devices and the mirroring of data, according to one embodiment of the present invention; and -
FIG. 7 illustrates a table that is used to providing mirroring of data, according to one embodiment of the present invention. - Reference will now be made to the preferred embodiments of the present invention, examples of which are illustrated in the accompanying drawings.
-
FIG. 1 illustrates a network device, such as a switching chip, in which an embodiment the present invention may be implemented.Device 100 includes aningress module 102, aMMU 104, and anegress module 106.Ingress module 102 is used for performing switching functionality on an incoming packet. MMU 104 is used for storing packets and performing resource checks on each packet. Egressmodule 106 is used for performing packet modification and transmitting the packet to an appropriate destination port. Each ofingress module 102, MMU 104 and Egressmodule 106 includes multiple cycles for processing instructions generated by that module.Device 100 implements a pipelined approach to process incoming packets. Thedevice 100 has the ability of the pipeline to process, according to one embodiment, one packet every clock cycle. According to one embodiment of the invention, thedevice 100 includes a 133.33 MHz core clock. This means that thedevice 100 architecture is capable of processing 133.33M packets/sec. -
Device 100 may also include one or more internal fabric high speed ports, for example a HiGig™, high speed, port, 108 a-108 x, one or more external Ethernet ports 109 a-109 x, and aCPU port 110. High speed ports 108 a-108 x are used to interconnect various network devices in a system and thus form an internal switching fabric for transporting packets between external source ports and one or more external destination ports. As such, high speed ports 108 a-108 x are not externally visible outside of a system that includes multiple interconnected network devices.CPU port 110 is used to send and receive packets to and from external switching/routing control entities or CPUs. According to an embodiment of the invention,CPU port 110 may be considered as one of external Ethernet ports 109 a-109 x.Device 100 interfaces with external/off-chip CPUs through aCPU processing module 111, such as a CMIC, which interfaces with a PCI bus that connectsdevice 100 to an external CPU. - Network traffic enters and exits
device 100 through external Ethernet ports 109 a-109 x. Specifically, traffic indevice 100 is routed from an external Ethernet source port to one or more unique destination Ethernet ports 109 a-109 x. In one embodiment of the invention,device 100 supports physical Ethernet ports and logical (trunk) ports. A physical Ethernet port is a physical port ondevice 100 that is globally identified by a global port identifier. In an embodiment, the global port identifier includes a module identifier and a local port number that uniquely identifiesdevice 100 and a specific physical port. The trunk ports are a set of physical external Ethernet ports that act as a single link layer port. Each trunk port is assigned a global a trunk group identifier (TGID). According to an embodiment,device 100 can support up to 128 trunk ports, with up to 8 members per trunk port, and up to 29 external physical ports. Destination ports 109 a-109 x ondevice 100 may be physical external Ethernet ports or trunk ports. If a destination port is a trunk port,device 100 dynamically selects a physical external Ethernet port in the trunk by using a hash to select a member port. The dynamic selection enablesdevice 100 to allow for dynamic load sharing between ports in a trunk. - Once a packet enters
device 100 on a source port 109 a-109 x, the packet is transmitted toingress module 102 for processing. Packets may enterdevice 100 from a XBOD or a GBOD. The XBOD is a block that has one 10GE/12G MAC and supports packets from high speed ports 108 a-108 x. The GBOD is a block that has 12 10/100/1G MAC and supports packets from ports 109 a-109 x. -
FIG. 2 illustrates a centralizedingress pipeline architecture 200 ofingress module 102.Ingress pipeline 200 processes incoming packets, primarily determines an egress bitmap and, in some cases, figures out which parts of the packet may be modified.Ingress pipeline 200 includes adata holding register 202, a moduleheader holding register 204, an arbiter 206, aconfiguration stage 208, aparser stage 210, a discardstage 212 and aswitch stage 213.Ingress pipeline 200 receives data from the XBOD, GBOD orCPU processing module 111 and stores cell data indata holding register 202. Arbiter 206 is responsible for scheduling requests from the GBOD, the XBOD and CPU.Configuration stage 208 is used for setting up a table with all major port-specific fields that are required for switching.Parser stage 210 parses the incoming packet and a high speed module header, if present, handles tunnelled packets through Layer 3 (L3) tunnel table lookups, generates user defined fields, verifies Internet Protocol version 4 (IPv4) checksum on outer IPv4 header, performs address checks and prepares relevant fields for downstream lookup processing. Discardstage 212 looks for various early discard conditions and either drops the packet and/or prevents it from being sent throughpipeline 200.Switching stage 213 performs all switch processing iningress pipeline 200, including address resolution. - According to one embodiment of the invention, the ingress pipeline includes one 1024-bit cell
data holding register 202 and one 96-bitmodule header register 204 for each XBOD or GBOD.Data holding register 202 accumulates the incoming data into one contiguous 128-byte cell prior to arbitration and themodule header register 204 stores an incoming 96-bit module header for use later iningress pipeline 200. Specifically, holdingregister 202 stores incoming status information, including a Start cell Of Packet (SOP) signal, an End cell Of Packet (EOP) field, a purge field for indicating that the packet should be purged, a statistic update field for indicating that statistic counters should be updated for a particular packet, a high speed field for indicating that the associated packet arrived at a high speed port, a pause packet field for indicating if a current high speed packet is a pause packet, a cell byte count field for indicating the total bytes accumulated for the cell and a source port field. As is apparent to one skilled in the art, holdingregister 202 may store other fields not specifically identified above. -
Ingress pipeline 200 schedules requests from the XBOD and GBOD every six clock cycles and sends a signal to each XBOD and GBOD to indicate when the requests from the XBOD and GBOD will be scheduled.CPU processing module 111 transfers one cell at a time toingress module 102 and waits for an indication thatingress module 102 has used the cell before sending subsequent cells.Ingress pipeline 200 multiplexes signals from each of XBOD, GBOD and CPU processing based on which source is granted access toingress pipeline 200 by arbiter 206. Upon receiving signals from the XBOD or GBOD, a source port is calculated byregister buffer 202, the XBOD or GBOD connection is mapped to a particular physical port number ondevice 100 and register 202 passes information relating to a scheduled cell to arbiter 206. - When arbiter 206 receives information from
register buffer 202, arbiter 206 may issue at least one of a packet operation code, an instruction operation code or a FP refresh code, depending on resource conflicts. According to one embodiment, the arbiter 206 includes amain arbiter 207 andauxiliary arbiter 209. Themain arbiter 207 is a time-division multiplex (TDM) based arbiter that is responsible for scheduling requests from the GBOD and the XBOD, wherein requests frommain arbiter 207 are given the highest priority. Theauxiliary arbiter 209 schedules all non XBOD/GBOD requests, including CPU packet access requests, CPU memory/register read/write requests, learn operations, age operations, CPU table insert/delete requests, refresh requests and rate-limit counter refresh request and auxiliary arbiter's 209 requests are scheduled based on available slots frommain arbiter 207. - When the
main arbiter 207 grants an XBOD or GBOD a slot, the cell data is pulled out ofregister 202 and sent, along with other information fromregister 202, downingress pipeline 200. The XBOD/GBOD provides certain status bits, for example SOP, EOP and MOP status bits, tomain arbiter 207 that it uses to schedule the XBOD/GBOD requests and resolve any arbitration conflicts withauxiliary arbiter 209. After scheduling the XBOD/GBOD cell,main arbiter 207 forwards certain status bits, for example SOP, EOP and MOP status bits, toauxiliary arbiter 209. - The
auxiliary arbiter 209 is also responsible for performing all resource checks, in a specific cycle, to ensure that any operations that are issued simultaneously do not access the same resources. As such,auxiliary arbiter 209 is capable of scheduling a maximum of one instruction operation code or packet operation code per request cycle. According to one embodiment,auxiliary arbiter 209 implements resource check processing and a strict priority arbitration scheme. The resource check processing looks at all possible pending requests to determine which requests can be sent based on the resources that they use. Resources ofingress pipeline 200 are separated into lookup resources for SOP cells, MMU access for all cells, EOP resources for EOP cells and L2_MOD_FIFO resource for Layer 2 (L2) operations. The L2_MOD_FIFO resource is a 16 entry table that is used for tracking all updates to a Layer 2 (L2) table. Since the L2_MOD_FIFO resource is limited,auxiliary arbiter 209 restricts certain operations once the L2_MOD_FIFO resource is full. Additionally,auxiliary arbiter 209 may not schedule access to any address resolution processing faster than once every three clock cycles. - The strict priority arbitration scheme implemented in an embodiment of the invention requires that CPU access request are given the highest priority, CPU packet transfer requests are given the second highest priority, rate refresh request are given the third highest priority, CPU memory reset operations are given the fourth highest priority and Learn and age operations are given the fifth highest priority by
auxiliary arbiter 209. Upon processing the cell data,auxiliary arbiter 209 transmits packet signals, including SOP and EOP, the 1024 bit packet cell data, a L2_MOD_FIFO lock bit, instruction operation code information and instruction write data toconfiguration stage 208. As is apparent to one skilled in the art, the arbiter may transmit other types and/or configurations of information toconfiguration stage 208. -
Configuration stage 208 includes a port table for holding all major port specific fields that are required for switching, wherein one entry is associated with each port. Theconfiguration stage 208 also includes several registers. When theconfiguration stage 208 obtains information from arbiter 206, theconfiguration stage 208 sets up the inputs for the port table during a first cycle and multiplexes outputs for other port specific registers during a second cycle. At the end of the second cycle,configuration stage 208 sends output, including SOP, EOP, MOP, PURGE and statistic update, toparser stage 210. -
Parser stage 210 manages an ingress pipeline buffer which holds the 128-byte cell as lookup requests traversepipeline 200. When the lookup request reaches the end ofpipeline 200, the data is pulled from the ingress pipeline buffer and sent toMMU 104. If the packet is received on a high speed port, a 96-bit module header accompanying the packet is parsed byparser stage 210. -
FIG. 3 illustrates the components ofparser stage 210. According toFIG. 3 ,parser stage 210 includes a source trunk map table 302, aL2 parsing module 304, Layer 3 (L3) parsingmodule 306, L3Tunnel lookup module 308, IPv4 checksummodule 310, Layer 4 (L4) parsingmodule 312 and user defined field (UDF) parsingmodule 314. The source trunk map table 302 is used byparser stage 210 for source trunk resolution.L2 parsing module 304 supports parsing of different types of layer 2 encapsulations, including Ethernet II, 802.3, SNAP and 802.3 LLC packet types.L3 parsing module 306 supports parsing of different types of L3 encapsulations, including IPv4 packets with or without options, IPv6 packets and ARP packets. Additionally,L3 parsing module 306 supports parsing tunnelled packet to enable IP-in-IP and IPv6 over IPv4 tunnelling. L3tunnel lookup module 308 includes a 128 entry TCAM L3 tunnel table to enableparser 212 to determine if the incoming packet is a tunnelled IPv4 packet.IPv4 checksum module 310 verifies the IPv4 checksum on the outer IPv4 header and checks the IPv4 checksum on an outer IPv4 header with or without options.L4 parsing module 312 supports L4 parsing andUDF parsing module 314 supports user defined fields parsing for allowing users to match on arbitrary fields within the first 128 bytes of the packet. - After all fields have been parsed,
parser stage 210 writes the incoming cell data to the ingress pipeline buffer and passes a write pointer down the pipeline. Since the packet data is written to the ingress pipeline buffer, the packet data need not be transmitted further and the parsed module header information may be dropped. Discardstage 212 then looks for various early discard conditions and drops the packet and/or prevents it from being sent through the chip. -
Switching stage 213 performs address resolution processing and other switching on incoming packets. According to an embodiment of the invention, switchingstage 213 includes afirst switch stage 214 and asecond switch stage 216.First switch stage 214 resolves any drop conditions, performs BPDU processing, checks for L2 source station movement and resolves most of the destination processing for L2 and L3 unicast packets, L3 multicast packets and IPMC packets. Thefirst switch stage 214 also performs protocol packet control switching by optionally copying different types of protocol packets to the CPU or dropping them. Thefirst switch stage 214 further performs all source address checks and determines if the L2 entry needs to get learned or re-learned for station movement cases. Thefirst switch stage 214 further performs destination calls to determine how to switch packet based on a destination switching information. Specifically, thefirst switch stage 214 figures out the destination port for unicast packets or port bitmap of multicast packets, calculates a new priority, optionally traps packets to the CPU and drops packets for various error conditions. Thefirst switch stage 214 also includes a DSCP_Table for mapping an incoming IPv4 or IPv6 DSCP to a new value. Thefirst switch stage 214 further includes rate limiting counters that provide the ability to program specific rates for multicast, broadcast and DLF traffic. Thefirst switch stage 214 handles high speed switch processing separate from switch processing from port 109 a-109 i and switches the incoming high speed packet based on the stage header operation code. - The
second switch stage 216 then performs FP action resolution, source port removal, trunk resolution, high speed trunking, port blocking, CPU priority processing, end-to-end Head of Line (HOL) resource check, resource check, mirroring, maximum transfer length (MTU) checks for verifying that the size of incoming/outgoing packets is below a maximum transfer length. Thesecond switch stage 216 takesfirst switch stage 216 switching decision, any L3 routing information and FP redirection to produce a final destination for switching. Thesecond switch stage 216 also removes the source port from the destination port bitmap and performs trunk resolution processing for resolving the trunking for the destination port for unicast packets, the ingress mirror-to-port and the egress mirror-to-port. Thesecond switch stage 216 also performs high speed trunking by checking if the source port is part of a high speed trunk group and, if it is, removing all ports of the source high speed trunk group. Thesecond switch stage 216 further performs port blocking by performing masking for a variety of reasons, including meshing and egress masking. Thesecond switch stage 216 also determines priority/Class of Service for packets that are being sent to the CPU. Thesecond switch stage 216 further performs resource checks before mirroring to generate an accurate port bitmap for egress mirroring and to remove any resource-limited ports that might have been added by mirroring. Thesecond switch stage 216 then outputs the p-bus fields and the cell data toMMU 104. The p-bus fields indicate toegress stage 106 how to switch and modify the packet. - Upon receiving the packet from
MMU 104,egress module 106 supports multiple egress functions for a 72 gigabyte port bandwidth and a CPU processing bandwidth. According to one embodiment, theegress module 106 is capable of handling more than 72 Gig of traffic, i.e., 24 one GE port, 4 high speed ports (12G) and a CPU processing port of 0.2GE. Theegress module 106 receives original packets, as inputted from Ethernet ports 109 a-109 i, fromMMU 104, and may either transmit modified or unmodified packets to destination ports 109 j-109 x. According to one embodiment of the invention, all packet modifications withindevice 100 are made inegress module 106 and the core processing ofegress module 106 is capable of running faster than the processing of destination ports 109 a-109 x. Therefore,egress module 106 provides a stall mechanism on a port basis to prevent ports 109 a-109 x from becoming overloaded and thus services each port based on the speed of the port. - In an embodiment of the invention, the
egress module 106 is connected to theMMU 104 by a 1024 bits data interface and all packets transmitted from theMMU 104 passes throughegress module 106. Specifically, theMMU 104 passes unmodified packet data and control information toegress module 106. The control information includes the results of table lookups and switching decisions made iningress module 102. The data bus fromMMU 106 is shared across all ports 108 and 109 and theCPU processing 111. As such, the bus uses a “request based” Time Division Multiplexing (TDM) scheme, wherein each Gig port has a turn on the bus every 72 cycles and each high speed Port 108 has a turn every 6 cycles. CPU processing packet data is transmitted over bubbles—free spaces occurring on the bus. Upon receiving the information for theMMU 104, theegress module 106 parses the packet data, performs table lookups, executes switch logic, modifies, aligns and further buffers the packet before the data is transmitted to the appropriate destination port 109 a-109 x. - The
egress module 106 is connected to theCPU processing module 111 through a 32 bit S-bus interface which the CPU uses to send requests toegress module 106. The requests are typically for reading the egress module's resources, i.e., registers, memories and/or stat counters. Upon receiving a request, theegress module 106 converts the request into a command and uses a mechanism, described in detail below, for storing and inserting CPU instructions into a pipeline wherever there is an available slot on the pipeline. -
FIG. 4 illustrates a centralized egress pipeline architecture ofegress stage 106. The egress pipeline includes anarbiter 402,parser 406, atable lookup stage 408, adecision stage 410, amodification stage 412 and adata buffer 414. Thearbiter 402 provides arbitration for accessing egress pipeline resources between packet data and control information from MMU and information from the CPU.Parser 406 performs packet parsing for table lookups and modifications.Table lookup stage 408 performs table lookups for information transmitted fromparser 406.Decision stage 410 is used for deciding whether to modify, drop or otherwise process the packet.Modification stage 412 makes modification to the packet data based on outputs from previous stages of the ingress module. - All incoming packet data from the
MMU 104 is transmitted to aninitial packet buffer 404. In an embodiment of the invention, the initial packet buffer is 1044 bits wide and 18 words deep. The egress pipeline receives two inputs, packet data and control information from theMMU 104 and CPU operations from the s-bus. Theinitial packet buffer 404 stores packet data and keeps track of any empty cycles coming fromMMU 104.Initial packet buffer 404 outputs its write address andparser 406 passes the latest write address with pipeline instructions tomodification stage 414. - The
arbiter 402 collects packet data and control information from theMMU 104 and read/write requests to registers and memories from the CPU and synchronizes the packet data and control information fromMMU 104 and writes the requests from the CPU in a holding register. Based on the request type from the CPU, thearbiter 402 generates pipeline register and memory access instructions and hardware table initialization instructions. Afterarbiter 402 collects packet data, CPU requests and hardware table initialization messages, it generates an appropriate instruction. According to an embodiment,arbiter 402 generates a Start Cell Packet instruction, an End Cell of Packet instruction, a Middle Cell of Packet instruction, a Start-End Cell of Packet instruction, a Register Read Operation instruction, a Register Write Operation instruction, Memory Read Operation instruction, a Memory Write Operation instruction, a Memory Reset Write Operation instruction, a Memory Reset Write All Operation instruction and a No Operation instruction. Egress pipeline resources associated Start Cell Packet instructions and Start-End Cell of Packet instructions are given the highest priority byarbiter 404. End Cell of Packet instructions, Middle Cell of Packet instructions, Register Read Operation instructions, Register Write Operation instructions, Memory Read Operation instructions and Memory Write Operation instruction receive the second highest priority fromarbiter 404. Memory Reset Write Operation instructions and Memory Reset Write All Operation instructions receive the third highest priority fromarbiter 404. No Operation instructions receive the lowest priority fromarbiter 404. - After receiving an instruction from
arbiter 404,parser 406 parses packet data associated with the Start Cell of Packet instruction and the Start-End Cell of Packet instruction using the control information and a configuration register transmitted fromarbiter 406. According to an embodiment, the packet data is parsed to obtained L4 and L3 fields which appear in the first 148 bytes of the packet. -
Table lookup stage 408 then receives all packet fields and register values fromparser 406.FIG. 5 further illustratestable lookup stage 408.Table lookup stage 408 includes aL3 Module 502, aVLAN stage 504, aVLAN translation stage 506, IPtunneling lookup stage 508. In an embodiment of the invention,L3 Module 502 includes a 8k deep Next Hop Table 510 and a 4K deep Interface table 512. Next Hop table 510 is indexed based on a 13 bit wide next hop index from theMMU 104 and Next Hop table 510 provides a MAC Address and an Interface Number that is used, depending on the type of packet, to index Interface table 512. For all Memory Read Operation and Memory Write Operation instructions,table lookup stage 408 decodes the address and writes or reads data from corresponding tables. -
VLAN stage 504 is used to obtain VLAN related information and a spanning tree state of an outgoing port.VLAN stage 504 includes a VLAN table 514 and a stage (STG) table 516. VLAN table 514 is indexed based on the VLAN IDs from either the packet or Interface table 512. If a VLAN table lookup results in a “miss”, i.e., an invalid VLAN, then the packet may be dropped. If the VLAN entry is valid but the outgoing port is not a member of the VLAN, then the packet may be also dropped. The VLAN table outputs a VLAN membership, untagged bitmap, and a STG group number which is used to index STG table 516. STG table 516 outputs an STG vector which contains the spanning tree state of the outgoing ports.VLAN stage 504 also determines whether the packet should be modified in egress pipeline for CPU and ingress mirroring cases. -
VLAN translation stage 506 translates the incoming VLAN to a new one and searches various tables.VLAN translation stage 506 includes a Content Addressable Memory (CAM) 518 and an associated Data Random Addressable Memory (RAM) 520.CAM 518 is searched with the VLAN ID and the destination port number and if an associated entry is found, an address is obtained fromCAM 518 to access the associatedData RAM 520. - IP
tunneling lookup stage 508 obtains a partial Tunnel IP header from appropriate tables, registers and parsed packet fields. IPtunnelling lookup stage 508 includes a IP tunnel table 522 that is indexed issuing a tunnel index from interface table 512 and outputs tunnel type, among other information, which is used to distinguish among tunnel protocols that are implemented in egress pipeline. - Information from
table lookup stage 406 is then transmitted todecision stage 410 where a decision is made as to whether to modify, drop or otherwise process the packet. For example,decision stage 410 first looks for flush bits at the beginning of the packet transmission and if the flush bits are set, the packets are marked “dropped”. In an embodiment of the invention, if a flush bit for a packet is set for a packet already in transmission, the packet is completely transmitted and the next packet is flushed. In another example,MMU 104 may mark packets as Purge, Aged or Cell Error anddecision stage 410 may either be dropped or transmit these packet but mark them as erroneous. In another example, if a VLAN translate feature is enabled, but there was a miss inCAM 518 lookup, thedecision stage 410 may drop the packet if certain fields are set.Decision stage 408 also determines if the packet need to be L4 switched or L3 routed and the type of mirroring functions that need to be performed on the packet. -
Modification stage 412 thereafter constructs a Tunnel IP Header and a module header for the packet, makes replacement changes in the packet and computes IP checksum for outer and inner IP headers.Modification stage 412 receives a packet data interface from theinitial buffer 404 which enables modification stage 401 to provide a read address toinitial buffer 404 and in response obtain the packet data and basic control data.Modification stage 412 then generates Middle of Packet and End of Packet instructions based on the data received frominitial buffer 404 and makes changes based on these commands.Modification stage 412 also receives all packet decisions and pipelinecommands decision stage 410 and uses this information to make further changes to the packet. Specifically, all fields of the tunnel IP header which need to be filled by incoming packet fields are filled. - Furthermore, IP checksum for tunnel IP header is computed in parallel with the header construction.
Modification stage 412 further reads back packets and control information frominitial buffer 404 and performs all packet modifications and replacements of fields. It outputs CPU operations and hardware commands and data and addresses associated with them on one bus and outputs packet data and control information on another bus. Additionally,modification stage 412 performs physical encapsulation and de-capsulation of headers and tag removal and insertions. If a packet is going to a high speed port,modification stage 412 converts the packet from Ethernet format to high speed format.Modification stage 412 also aligns the packet by padding packets smaller than 64 bytes and removes holes by aligning data to 1314 bit boundary. Thereafter, 1314 bits “complete” data word is outputted frommodification stage 412 to thedata buffer 414. -
Data buffer 414 stores completed data words frommodification stage 412 in memory. Before the egress pipeline sends packets out to destination ports 109 a-109 x, the packet data are stored in thedata buffer 414 for pipeline latency and port speed matching.Data buffer 414 is capable for requesting data fromMMU 104 whenever it has a free space. - Different types of mirroring can accommodate the needs of mirroring as it is used today. These types of mirroring include ingress mirroring, egress mirroring and MAC-based (i.e. address-based) mirroring. In the case of ingress mirroring, an unmodified packet is forwarded to the mirrored-to port, and the latter two types receive a modified packet. In specific embodiments, up to four mirrored-to ports may be selected for both ingress and egress mirroring.
- Tables, as shown in
FIG. 7 , are used to effectuate the mirroring process. For a given port, the L2 lookup process, as discussed above, provides mirroring information and determines where a mirror index table should also be used. The mirror index table is read to determine mirroring ports, which may also be specified as a trunk group ID. According to one embodiment, for each ingress port, one Ingress Mirror to Port can be specified. For each egress port, one Egress Mirror to Port can be specified. One Not-Unicast Mirror to Port can also be specified. When a packet is received from one ingress port to one egress port, Ingress Mirror to Port will be picked up according to its ingress port. Egress Mirror port will be picked up according to its egress port. For the multicast packet, since the packet is destined for multiple egress ports, each could have one egress mirror to port specified. The Not-Unicast Mirror to Port will be picked up according to its ingress port instead of sending multiple egress mirror packet to different egress ports. - Thus, for L2 switched packets, as shown in
FIG. 6 , the packet is received on the FB1 network device 601, and its destination address is determined through an address resolution process, as discussed above. Assuming that ingress port is mirrored and the destination port is also mirrored, the unmodified packet is forwarded to the mirrored-to port onnetwork device FB 2 603 through theswitch fabric 602. A mirror to port is not required to be in thesame FB 601, but can be specified in theremote FB 603 orFB 604 in thesame fabric 602. A modified packet is sent also toFB 2 603, which is the destination address for the packet. A copy of the modified packet is also sent toFB 3 604, which contains the egress mirrored-to-port. In certain embodiments,FB 601 can have specified four Ingress Mirror to Ports. In certain embodiments, a total of four Egress Mirror to Ports, where either mirror to port can be part of a trunk group. - As discussed above and illustrated in
FIG. 6 , three versions of the packet are sent through series of switches. A first is a modified version of the packet that is sent to the destination port ofswitch 603. The header of the original packet is modified when the packet is sent out an egress port ofdevice 601 to reach its ultimate destination. Since the destination port has a mirrored-to-port, Egress Mirrored, ondevice 604, a copy of the modified packet is also sent out that mirrored-to-port. Lastly, since the ingress port ondevice 601 is also mirrored, an unmodified packet is sent to Ingress Mirrored port ondevice 603. - When a packet is received by an MMU, the MMU stores only one copy of this packet in Cell Buffer Pool and one copy inside the egress port Transmit Queue. The MMU replicates this entry to send out needed copies to the egress pipe. This packet's packet pointer is keep in Transmit Queue until all the needed copies have sent to the Egress Pipe. The MMU first sends out the normal switch packet and flags it as a SWITCH packet. After finish transmitting the first packet, the MMU sends out a second packet and marks it as an Ingress Mirrored packet. The Egress Pipe will not modify this packet according this Mark out. At the end, the MMU will send out the last packet and mark it as an Egress Mirror Packet. The Egress Pipe will modify this packet as a Modified packet. After all packets are sent, the packet pointer will be released from the Transmit Queue and the packet's copy in Cell Buffer Pool will be removed.
- Returning to the above discussed embodiment, for the multicast ingress packet received in the
FABRIC 602,FB 601 will send out Ingress and Egress Mirror Packets marked as a unicast packet and no longer as a multicast packet. Therefore, there is only one Ingress and one Egress Packet that can be generated withinFABRIC 602. - While the above-discussed embodiment illustrates both ingress and egress mirroring over a series of devices, the present invention is also applicable to mirroring of ports of a device to a mirrored-to-port on the same device. It is also applicable to one type of mirroring, i.e. egress, ingress or MAC-based, without use of other types of mirroring in the same device.
- The above-discussed configuration of the invention is, in a preferred embodiment, embodied on a semiconductor substrate, such as silicon, with appropriate semiconductor manufacturing techniques and based upon a circuit layout which would, based upon the embodiments discussed above, be apparent to those skilled in the art. A person of skill in the art with respect to semiconductor design and manufacturing would be able to implement the various modules, interfaces, and tables, buffers, etc. of the present invention onto a single semiconductor substrate, based upon the architectural description discussed above. It would also be within the scope of the invention to implement the disclosed elements of the invention in discrete electronic components, thereby taking advantage of the functional aspects of the invention without maximizing the advantages through the use of a single semiconductor substrate.
- With respect to the present invention, network devices may be any device that utilizes network data, and can include switches, routers, bridges, gateways or servers. In addition, while the above discussion specifically mentions the handling of packets, packets, in the context of the instant application, can include any sort of datagrams, data packets and cells, or any type of data exchanged between network devices.
- The foregoing description has been directed to specific embodiments of this invention. It will be apparent, however, that other variations and modifications may be made to the described embodiments, with the attainment of some or all of their advantages. Therefore, it is the object of the appended claims to cover all such variations and modifications as come within the true spirit and scope of the invention.
Claims (23)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US11/252,562 US7738385B2 (en) | 2004-11-30 | 2005-10-19 | Mirroring of data in a network device |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US63157004P | 2004-11-30 | 2004-11-30 | |
US11/252,562 US7738385B2 (en) | 2004-11-30 | 2005-10-19 | Mirroring of data in a network device |
Publications (2)
Publication Number | Publication Date |
---|---|
US20060114831A1 true US20060114831A1 (en) | 2006-06-01 |
US7738385B2 US7738385B2 (en) | 2010-06-15 |
Family
ID=36567281
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US11/252,562 Active 2028-12-28 US7738385B2 (en) | 2004-11-30 | 2005-10-19 | Mirroring of data in a network device |
Country Status (1)
Country | Link |
---|---|
US (1) | US7738385B2 (en) |
Cited By (20)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20060008256A1 (en) * | 2003-10-01 | 2006-01-12 | Khedouri Robert K | Audio visual player apparatus and system and method of content distribution using the same |
US20070047456A1 (en) * | 2005-08-24 | 2007-03-01 | Jorgensen Steven G | Sampling of network traffic based on CAM lookup |
US20070208838A1 (en) * | 2006-03-01 | 2007-09-06 | Cisco Technology, Inc. | Method and system for mirroring dropped packets |
US20080010372A1 (en) * | 2003-10-01 | 2008-01-10 | Robert Khedouri | Audio visual player apparatus and system and method of content distribution using the same |
US20080304498A1 (en) * | 2007-06-05 | 2008-12-11 | Jorgensen Steven G | Packet mirroring |
DE102007015452B3 (en) * | 2007-03-30 | 2008-12-11 | Siemens Ag | Method and analysis of a synchronized data traffic of a packet- and address-oriented data network and formation of such a data network for carrying out the method |
US7738385B2 (en) * | 2004-11-30 | 2010-06-15 | Broadcom Corporation | Mirroring of data in a network device |
US7764621B1 (en) | 2007-12-28 | 2010-07-27 | Ciena Corporation | Packet loopback methods and replacing a destination address with a source address |
US20110128885A1 (en) * | 2009-12-02 | 2011-06-02 | Vss Monitoring, Inc. | System, apparatus, and method for modifying captured data packets |
US20110170552A1 (en) * | 2010-01-08 | 2011-07-14 | Alaxala Networks Corporation | Packet relay apparatus |
US8218540B1 (en) * | 2007-12-28 | 2012-07-10 | World Wide Packets, Inc. | Modifying a duplicated packet and forwarding encapsulated packets |
US20120246426A1 (en) * | 2008-10-08 | 2012-09-27 | International Business Machines Corporation | Method for optimizing cleaning of maps in flashcopy cascades containing incremental maps |
US20130003550A1 (en) * | 2011-06-29 | 2013-01-03 | Broadcom Corporation | System and Method for Priority Based Flow Control Between Nodes |
US20150139235A1 (en) * | 2013-11-21 | 2015-05-21 | Mediatek Inc. | Packet processing apparatus using action command parameterization |
US9430239B2 (en) | 2013-03-12 | 2016-08-30 | Qualcomm Incorporated | Configurable multicore network processor |
AU2014101296B4 (en) * | 2014-10-23 | 2016-10-20 | Arista Networks, Inc. | Apparatus and Method for Improved Physical Layer Switching |
US9674084B2 (en) | 2013-11-21 | 2017-06-06 | Nephos (Hefei) Co. Ltd. | Packet processing apparatus using packet processing units located at parallel packet flow paths and with different programmability |
CN112383463A (en) * | 2020-11-13 | 2021-02-19 | 北京神经元网络技术有限公司 | Repeater applied to AUTBUS bus and bus network |
US11451473B2 (en) * | 2020-05-26 | 2022-09-20 | Arista Networks, Inc. | Egress mirroring packets to CPU using recirculation |
US11632445B2 (en) | 2021-03-22 | 2023-04-18 | Arista Networks, Inc. | Packet recirculation for tunneling encapsulation |
Families Citing this family (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10608937B1 (en) | 2015-12-28 | 2020-03-31 | Amazon Technologies, Inc. | Determining destination resolution stages for forwarding decisions |
US9819587B1 (en) | 2015-12-28 | 2017-11-14 | Amazon Technologies, Inc. | Indirect destination determinations to forward tunneled network packets |
US10454831B1 (en) | 2016-06-30 | 2019-10-22 | Amazon Technologies, Inc. | Load-balanced forwarding of network packets generated by a networking device |
Citations (16)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4651318A (en) * | 1984-11-30 | 1987-03-17 | At&T Bell Laboratories | Self-routing packets with stage address identifying fields |
US4881074A (en) * | 1987-05-14 | 1989-11-14 | Siemens Aktiengesellschaft | Method for forming an address table in a ring-shaped communications network |
US5243596A (en) * | 1992-03-18 | 1993-09-07 | Fischer & Porter Company | Network architecture suitable for multicasting and resource locking |
US5640393A (en) * | 1995-06-02 | 1997-06-17 | Advanced Micro Devices, Inc. | Multiple address security architecture |
US5892922A (en) * | 1997-02-28 | 1999-04-06 | 3Com Corporation | Virtual local area network memory access system |
US6016310A (en) * | 1997-06-30 | 2000-01-18 | Sun Microsystems, Inc. | Trunking support in a high performance network device |
US6041042A (en) * | 1997-05-27 | 2000-03-21 | Cabletron Systems, Inc. | Remote port mirroring system and method thereof |
US6222841B1 (en) * | 1997-01-08 | 2001-04-24 | Digital Vision Laboratories Corporation | Data transmission system and method |
US6425015B1 (en) * | 1997-11-28 | 2002-07-23 | 3 Com Technologies | Stacked communication devices and method for port mirroring using modified protocol |
US6496502B1 (en) * | 1998-06-29 | 2002-12-17 | Nortel Networks Limited | Distributed multi-link trunking method and apparatus |
US20030118016A1 (en) * | 2000-06-19 | 2003-06-26 | Broadcom Corporation | Switch fabric with path redundancy |
US20040213232A1 (en) * | 2003-04-28 | 2004-10-28 | Alcatel Ip Networks, Inc. | Data mirroring in a service |
US20060059163A1 (en) * | 2004-08-20 | 2006-03-16 | Enterasys Networks, Inc. | System, method and apparatus for traffic mirror setup, service and security in communication networks |
US7031304B1 (en) * | 2002-09-11 | 2006-04-18 | Redback Networks Inc. | Method and apparatus for selective packet Mirroring |
US20060143300A1 (en) * | 2002-06-27 | 2006-06-29 | Micahael See | Method and apparatus for mirroring traffic over a network |
US7292573B2 (en) * | 2004-03-31 | 2007-11-06 | Hewlett-Packard Development Company, L.P. | Methods and apparatus for selection of mirrored traffic |
Family Cites Families (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7738385B2 (en) * | 2004-11-30 | 2010-06-15 | Broadcom Corporation | Mirroring of data in a network device |
-
2005
- 2005-10-19 US US11/252,562 patent/US7738385B2/en active Active
Patent Citations (17)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US4651318A (en) * | 1984-11-30 | 1987-03-17 | At&T Bell Laboratories | Self-routing packets with stage address identifying fields |
US4881074A (en) * | 1987-05-14 | 1989-11-14 | Siemens Aktiengesellschaft | Method for forming an address table in a ring-shaped communications network |
US5243596A (en) * | 1992-03-18 | 1993-09-07 | Fischer & Porter Company | Network architecture suitable for multicasting and resource locking |
US5406322A (en) * | 1992-03-18 | 1995-04-11 | The Whitaker Corporation | Packet-switched ring network having direct access to low and high bandwidth memories |
US5640393A (en) * | 1995-06-02 | 1997-06-17 | Advanced Micro Devices, Inc. | Multiple address security architecture |
US6222841B1 (en) * | 1997-01-08 | 2001-04-24 | Digital Vision Laboratories Corporation | Data transmission system and method |
US5892922A (en) * | 1997-02-28 | 1999-04-06 | 3Com Corporation | Virtual local area network memory access system |
US6041042A (en) * | 1997-05-27 | 2000-03-21 | Cabletron Systems, Inc. | Remote port mirroring system and method thereof |
US6016310A (en) * | 1997-06-30 | 2000-01-18 | Sun Microsystems, Inc. | Trunking support in a high performance network device |
US6425015B1 (en) * | 1997-11-28 | 2002-07-23 | 3 Com Technologies | Stacked communication devices and method for port mirroring using modified protocol |
US6496502B1 (en) * | 1998-06-29 | 2002-12-17 | Nortel Networks Limited | Distributed multi-link trunking method and apparatus |
US20030118016A1 (en) * | 2000-06-19 | 2003-06-26 | Broadcom Corporation | Switch fabric with path redundancy |
US20060143300A1 (en) * | 2002-06-27 | 2006-06-29 | Micahael See | Method and apparatus for mirroring traffic over a network |
US7031304B1 (en) * | 2002-09-11 | 2006-04-18 | Redback Networks Inc. | Method and apparatus for selective packet Mirroring |
US20040213232A1 (en) * | 2003-04-28 | 2004-10-28 | Alcatel Ip Networks, Inc. | Data mirroring in a service |
US7292573B2 (en) * | 2004-03-31 | 2007-11-06 | Hewlett-Packard Development Company, L.P. | Methods and apparatus for selection of mirrored traffic |
US20060059163A1 (en) * | 2004-08-20 | 2006-03-16 | Enterasys Networks, Inc. | System, method and apparatus for traffic mirror setup, service and security in communication networks |
Cited By (69)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US9026033B2 (en) | 2003-10-01 | 2015-05-05 | Sandisk Technologies Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US8700739B2 (en) | 2003-10-01 | 2014-04-15 | Sandisk Technologies Inc. | Device for automatically receiving new digital content from a network |
US9081781B2 (en) | 2003-10-01 | 2015-07-14 | Sandisk Technologies Inc. | Wireless portable device for creating and wirelessly transmitting digital audio and/or video |
US20080177860A1 (en) * | 2003-10-01 | 2008-07-24 | Musicgremlin, Inc. | Method of wirelessly sharing content among devices |
US20080155129A1 (en) * | 2003-10-01 | 2008-06-26 | Musicgremlin, Inc. | Remotely configured media device |
US20080155634A1 (en) * | 2003-10-01 | 2008-06-26 | Musicgremlin, Inc. | System sharing content |
US20080155057A1 (en) * | 2003-10-01 | 2008-06-26 | Musicgremlin, Inc. | System sharing user content on a content-receiving device |
US20080155470A1 (en) * | 2003-10-01 | 2008-06-26 | Musicgremlin, Inc. | Portable media device with list management tools |
US20080155109A1 (en) * | 2003-10-01 | 2008-06-26 | Musicgremlin, Inc. | System for providing a digital media service |
US20080160910A1 (en) * | 2003-10-01 | 2008-07-03 | Musicgremlin, Inc. | Device for accessing a digital media service |
US20110009051A1 (en) * | 2003-10-01 | 2011-01-13 | Khedouri Robert K | Audio Visual Player Apparatus and System and Method of Content Distribution Using the Same |
US20100325239A1 (en) * | 2003-10-01 | 2010-12-23 | Robert Khedouri | Method and System for Updating a List of Content Stored on a User-Operated Device |
US20080201376A1 (en) * | 2003-10-01 | 2008-08-21 | Musicgremlin, Inc. | Method for sharing content with several devices |
US8160495B2 (en) | 2003-10-01 | 2012-04-17 | Sandisk Technologies Inc. | Wireless portable device for sharing digital content items |
US20080010372A1 (en) * | 2003-10-01 | 2008-01-10 | Robert Khedouri | Audio visual player apparatus and system and method of content distribution using the same |
US20080178238A1 (en) * | 2003-10-01 | 2008-07-24 | Musicgremlin, Inc. | System with several devices sharing content and a central server |
US20080176540A1 (en) * | 2003-10-01 | 2008-07-24 | Musicgremlin, Inc. | Portable device with intermittent communications |
US20080175566A1 (en) * | 2003-10-01 | 2008-07-24 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20090069915A1 (en) * | 2003-10-01 | 2009-03-12 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20060008256A1 (en) * | 2003-10-01 | 2006-01-12 | Khedouri Robert K | Audio visual player apparatus and system and method of content distribution using the same |
US9092519B2 (en) | 2003-10-01 | 2015-07-28 | Sandisk Technologies Inc. | Method and system for updating a list of content stored on a user-operated device |
US20080305738A1 (en) * | 2003-10-01 | 2008-12-11 | Musicgremlin, Inc. | System displaying received content on a portable wireless media device |
US20080212944A1 (en) * | 2003-10-01 | 2008-09-04 | Musicgremlin, Inc. | Network system of media players sharing content |
US20080212945A1 (en) * | 2003-10-01 | 2008-09-04 | Music Gremlin, Inc. | Method for acquiring digital content |
US20080201375A1 (en) * | 2003-10-01 | 2008-08-21 | Musicgremlin, Inc. | Method and portable device with local catalog management |
US20080187115A1 (en) * | 2003-10-01 | 2008-08-07 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080160909A1 (en) * | 2004-09-29 | 2008-07-03 | Music Gremlin, Inc. | Apparatus and methods for playing digital content and displaying same |
US20080162655A1 (en) * | 2004-09-29 | 2008-07-03 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080180401A1 (en) * | 2004-09-29 | 2008-07-31 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080182508A1 (en) * | 2004-09-29 | 2008-07-31 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080182509A1 (en) * | 2004-09-29 | 2008-07-31 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080182510A1 (en) * | 2004-09-29 | 2008-07-31 | Musicgremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080184317A1 (en) * | 2004-09-29 | 2008-07-31 | Music Gremlin, Inc | Audio visual player apparatus and system and method of content distribution using the same |
US20080184359A1 (en) * | 2004-09-29 | 2008-07-31 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080183840A1 (en) * | 2004-09-29 | 2008-07-31 | Musicgremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080189295A1 (en) * | 2004-09-29 | 2008-08-07 | Musicgremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US7881656B2 (en) | 2004-09-29 | 2011-02-01 | Sandisk Corporation | Audio visual player apparatus and system and method of content distribution using the same |
US20080160908A1 (en) * | 2004-09-29 | 2008-07-03 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20080163302A1 (en) * | 2004-09-29 | 2008-07-03 | Music Gremlin, Inc. | Audio visual player apparatus and system and method of content distribution using the same |
US20100325238A1 (en) * | 2004-09-29 | 2010-12-23 | Robert Khedouri | Wireless Portable Device and Method for Sending a Digital File of an Audio and/or Video Message |
US7738385B2 (en) * | 2004-11-30 | 2010-06-15 | Broadcom Corporation | Mirroring of data in a network device |
US20070047456A1 (en) * | 2005-08-24 | 2007-03-01 | Jorgensen Steven G | Sampling of network traffic based on CAM lookup |
US8050185B2 (en) * | 2005-08-24 | 2011-11-01 | Hewlett-Packard Development Company, L.P. | Sampling of network traffic based on CAM lookup |
US8095683B2 (en) * | 2006-03-01 | 2012-01-10 | Cisco Technology, Inc. | Method and system for mirroring dropped packets |
US20070208838A1 (en) * | 2006-03-01 | 2007-09-06 | Cisco Technology, Inc. | Method and system for mirroring dropped packets |
DE102007015452B3 (en) * | 2007-03-30 | 2008-12-11 | Siemens Ag | Method and analysis of a synchronized data traffic of a packet- and address-oriented data network and formation of such a data network for carrying out the method |
US8259757B2 (en) | 2007-03-30 | 2012-09-04 | Siemens Aktiengesellschaft | Method and analysis of synchronized data traffic of a packet and address-oriented data network and configuration of such a data network for the implementation of the method |
US20100118896A1 (en) * | 2007-03-30 | 2010-05-13 | Joachim Grottel | Method and analysis of synchronized data traffic of a packet and address-oriented data network and configuration of such a data network for the implementation of the method |
US8054833B2 (en) * | 2007-06-05 | 2011-11-08 | Hewlett-Packard Development Company, L.P. | Packet mirroring |
US20080304498A1 (en) * | 2007-06-05 | 2008-12-11 | Jorgensen Steven G | Packet mirroring |
US8218540B1 (en) * | 2007-12-28 | 2012-07-10 | World Wide Packets, Inc. | Modifying a duplicated packet and forwarding encapsulated packets |
US7764621B1 (en) | 2007-12-28 | 2010-07-27 | Ciena Corporation | Packet loopback methods and replacing a destination address with a source address |
US8990529B2 (en) | 2008-10-08 | 2015-03-24 | International Business Machines Corporation | Method for optimizing cleaning of maps in flashcopy cascades containing incremental maps |
US20120246426A1 (en) * | 2008-10-08 | 2012-09-27 | International Business Machines Corporation | Method for optimizing cleaning of maps in flashcopy cascades containing incremental maps |
US8688937B2 (en) * | 2008-10-08 | 2014-04-01 | International Business Machines Corporation | Method for optimizing cleaning of maps in flashcopy cascades containing incremental maps |
US20110128885A1 (en) * | 2009-12-02 | 2011-06-02 | Vss Monitoring, Inc. | System, apparatus, and method for modifying captured data packets |
US8767727B2 (en) * | 2009-12-02 | 2014-07-01 | Vss Monitoring, Inc. | System, apparatus, and method for modifying captured data packets |
US8565246B2 (en) * | 2010-01-08 | 2013-10-22 | Alaxala Networks Corporation | Packet relay apparatus |
US20110170552A1 (en) * | 2010-01-08 | 2011-07-14 | Alaxala Networks Corporation | Packet relay apparatus |
US20130003550A1 (en) * | 2011-06-29 | 2013-01-03 | Broadcom Corporation | System and Method for Priority Based Flow Control Between Nodes |
US9124524B2 (en) * | 2011-06-29 | 2015-09-01 | Broadcom Corporation | System and method for priority based flow control between nodes |
US9430239B2 (en) | 2013-03-12 | 2016-08-30 | Qualcomm Incorporated | Configurable multicore network processor |
CN104660520A (en) * | 2013-11-21 | 2015-05-27 | 联发科技股份有限公司 | Packet processing apparatus |
US20150139235A1 (en) * | 2013-11-21 | 2015-05-21 | Mediatek Inc. | Packet processing apparatus using action command parameterization |
US9674084B2 (en) | 2013-11-21 | 2017-06-06 | Nephos (Hefei) Co. Ltd. | Packet processing apparatus using packet processing units located at parallel packet flow paths and with different programmability |
AU2014101296B4 (en) * | 2014-10-23 | 2016-10-20 | Arista Networks, Inc. | Apparatus and Method for Improved Physical Layer Switching |
US11451473B2 (en) * | 2020-05-26 | 2022-09-20 | Arista Networks, Inc. | Egress mirroring packets to CPU using recirculation |
CN112383463A (en) * | 2020-11-13 | 2021-02-19 | 北京神经元网络技术有限公司 | Repeater applied to AUTBUS bus and bus network |
US11632445B2 (en) | 2021-03-22 | 2023-04-18 | Arista Networks, Inc. | Packet recirculation for tunneling encapsulation |
Also Published As
Publication number | Publication date |
---|---|
US7738385B2 (en) | 2010-06-15 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US7738385B2 (en) | Mirroring of data in a network device | |
US8005084B2 (en) | Mirroring in a network device | |
EP1662725B1 (en) | Cut-through switching in a network device | |
US8000324B2 (en) | Pipeline architecture of a network device | |
US8320240B2 (en) | Rate limiting and minimum and maximum shaping in a network device | |
US7830892B2 (en) | VLAN translation in a network device | |
US7680107B2 (en) | High speed trunking in a network device | |
US7570639B2 (en) | Multicast trunking in a network device | |
US7016352B1 (en) | Address modification within a switching device in a packet-switched network | |
EP1729461B1 (en) | Dynamic port failover | |
US8014390B2 (en) | Policy based routing using a fast filter processor | |
US7986616B2 (en) | System and method for maintaining a layer 2 modification buffer | |
US6504846B1 (en) | Method and apparatus for reclaiming buffers using a single buffer bit | |
US6732184B1 (en) | Address table overflow management in a network switch | |
US7554984B2 (en) | Fast filter processor metering and chaining | |
US7715384B2 (en) | Unicast trunking in a network device | |
US6804234B1 (en) | External CPU assist when peforming a network address lookup | |
US6907036B1 (en) | Network switch enhancements directed to processing of internal operations in the network switch | |
US6778547B1 (en) | Method and apparatus for improving throughput of a rules checker logic | |
US8085766B2 (en) | S-flow in a network device | |
US7352748B1 (en) | Updating of routing data in a network element | |
KR100836947B1 (en) | Tag generation based on priority or differentiated services information | |
US6963566B1 (en) | Multiple address lookup engines running in parallel in a switch for a packet-switched network | |
KR100577448B1 (en) | Method and apparatus for trunking multiple ports in a network switch | |
US6963567B1 (en) | Single address lookup table with multiple address lookup engines running in parallel in a switch for a packet-switched network |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AS | Assignment |
Owner name: BROADCOM CORPORATION,CALIFORNIA Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:BUDUMA, VENKATESHWAR;WU, CHIEN-HSIEN;REEL/FRAME:017122/0761 Effective date: 20051013 Owner name: BROADCOM CORPORATION, CALIFORNIA Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:BUDUMA, VENKATESHWAR;WU, CHIEN-HSIEN;REEL/FRAME:017122/0761 Effective date: 20051013 |
|
STCF | Information on status: patent grant |
Free format text: PATENTED CASE |
|
FPAY | Fee payment |
Year of fee payment: 4 |
|
AS | Assignment |
Owner name: BANK OF AMERICA, N.A., AS COLLATERAL AGENT, NORTH CAROLINA Free format text: PATENT SECURITY AGREEMENT;ASSIGNOR:BROADCOM CORPORATION;REEL/FRAME:037806/0001 Effective date: 20160201 Owner name: BANK OF AMERICA, N.A., AS COLLATERAL AGENT, NORTH Free format text: PATENT SECURITY AGREEMENT;ASSIGNOR:BROADCOM CORPORATION;REEL/FRAME:037806/0001 Effective date: 20160201 |
|
AS | Assignment |
Owner name: AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD., SINGAPORE Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:BROADCOM CORPORATION;REEL/FRAME:041706/0001 Effective date: 20170120 Owner name: AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNOR:BROADCOM CORPORATION;REEL/FRAME:041706/0001 Effective date: 20170120 |
|
AS | Assignment |
Owner name: BROADCOM CORPORATION, CALIFORNIA Free format text: TERMINATION AND RELEASE OF SECURITY INTEREST IN PATENTS;ASSIGNOR:BANK OF AMERICA, N.A., AS COLLATERAL AGENT;REEL/FRAME:041712/0001 Effective date: 20170119 |
|
MAFP | Maintenance fee payment |
Free format text: PAYMENT OF MAINTENANCE FEE, 8TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1552) Year of fee payment: 8 |
|
AS | Assignment |
Owner name: AVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITE Free format text: MERGER;ASSIGNOR:AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.;REEL/FRAME:047196/0687 Effective date: 20180509 |
|
AS | Assignment |
Owner name: AVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITE Free format text: CORRECTIVE ASSIGNMENT TO CORRECT THE EFFECTIVE DATE OF MERGER TO 9/5/2018 PREVIOUSLY RECORDED AT REEL: 047196 FRAME: 0687. ASSIGNOR(S) HEREBY CONFIRMS THE MERGER;ASSIGNOR:AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.;REEL/FRAME:047630/0344 Effective date: 20180905 |
|
AS | Assignment |
Owner name: AVAGO TECHNOLOGIES INTERNATIONAL SALES PTE. LIMITE Free format text: CORRECTIVE ASSIGNMENT TO CORRECT THE PROPERTY NUMBERS PREVIOUSLY RECORDED AT REEL: 47630 FRAME: 344. ASSIGNOR(S) HEREBY CONFIRMS THE ASSIGNMENT;ASSIGNOR:AVAGO TECHNOLOGIES GENERAL IP (SINGAPORE) PTE. LTD.;REEL/FRAME:048883/0267 Effective date: 20180905 |
|
MAFP | Maintenance fee payment |
Free format text: PAYMENT OF MAINTENANCE FEE, 12TH YEAR, LARGE ENTITY (ORIGINAL EVENT CODE: M1553); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY Year of fee payment: 12 |